Warning: Permanently added '10.128.0.148' (ECDSA) to the list of known hosts.
syzkaller login: [  165.710432][   T25] audit: type=1400 audit(1592106145.292:8): avc:  denied  { execmem } for  pid=6420 comm="syz-executor882" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[  173.114611][ T6421] IPVS: ftp: loaded support on port[0] = 21
[  173.140560][ T6421] chnl_net:caif_netlink_parms(): no params data found
[  173.184320][ T6421] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.192079][ T6421] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.199763][ T6421] device bridge_slave_0 entered promiscuous mode
[  173.206647][ T6421] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.214364][ T6421] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.222011][ T6421] device bridge_slave_1 entered promiscuous mode
[  173.232110][ T6421] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  173.242255][ T6421] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  173.254722][ T6421] team0: Port device team_slave_0 added
[  173.260945][ T6421] team0: Port device team_slave_1 added
[  173.269564][ T6421] batman_adv: batadv0: Adding interface: batadv_slave_0
[  173.278247][ T6421] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.304618][ T6421] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  173.315647][ T6421] batman_adv: batadv0: Adding interface: batadv_slave_1
[  173.322814][ T6421] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.349050][ T6421] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  173.398942][ T6421] device hsr_slave_0 entered promiscuous mode
[  173.448279][ T6421] device hsr_slave_1 entered promiscuous mode
[  173.497293][ T6421] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  173.528978][ T6421] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  173.578973][ T6421] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  173.638905][ T6421] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  173.693685][ T6421] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.700844][ T6421] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.708063][ T6421] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.715066][ T6421] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.732002][ T6421] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.740536][ T2862] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  173.749290][ T2862] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.756430][ T2862] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.764075][ T2862] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  173.772819][ T6421] 8021q: adding VLAN 0 to HW filter on device team0
[  173.780832][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  173.792321][   T43] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.799355][   T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.814109][ T6421] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  173.824638][ T6421] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  173.836444][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  173.847473][ T6624] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.854608][ T6624] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.862153][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  173.870292][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  173.878362][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  173.886307][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  173.894246][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  173.901617][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  173.912710][ T6421] 8021q: adding VLAN 0 to HW filter on device batadv0
[  173.920132][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  173.927535][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  173.941736][ T6421] device veth0_vlan entered promiscuous mode
[  173.948566][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  173.956839][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  173.965075][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  173.972542][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  173.981669][ T6421] device veth1_vlan entered promiscuous mode
[  173.992090][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  173.999897][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  174.007745][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  174.017070][ T6421] device veth0_macvtap entered promiscuous mode
[  174.024869][ T6421] device veth1_macvtap entered promiscuous mode
[  174.034370][ T6421] batman_adv: batadv0: Interface activated: batadv_slave_0
executing program
[  174.041875][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  174.050582][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  174.059791][ T6421] batman_adv: batadv0: Interface activated: batadv_slave_1
[  174.067218][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  174.108791][ T6646] netlink: 'syz-executor882': attribute type 5 has an invalid length.
[  174.116958][ T6646] netlink: 116 bytes leftover after parsing attributes in process `syz-executor882'.
[  174.127546][ T6646] FAULT_INJECTION: forcing a failure.
[  174.127546][ T6646] name failslab, interval 1, probability 0, space 0, times 1
[  174.140445][ T6646] CPU: 0 PID: 6646 Comm: syz-executor882 Not tainted 5.7.0-syzkaller #0
[  174.148775][ T6646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  174.158811][ T6646] Call Trace:
[  174.162270][ T6646]  dump_stack+0xb4/0xe3
[  174.166487][ T6646]  should_fail.cold+0x32/0x39
[  174.171128][ T6646]  should_failslab+0x5/0xf
[  174.175599][ T6646]  kmem_cache_alloc_trace+0x26/0x2c0
[  174.180868][ T6646]  ? _raw_spin_lock_irqsave+0x35/0x70
[  174.186292][ T6646]  macvlan_hash_add_source+0x52/0xe0
[  174.191549][ T6646]  macvlan_changelink_sources+0x1d4/0x1f0
[  174.197236][ T6646]  macvlan_common_newlink+0x21a/0x570
[  174.202570][ T6646]  ? macvlan_common_newlink+0x570/0x570
[  174.208080][ T6646]  __rtnl_newlink+0x843/0xb10
[  174.212729][ T6646]  ? bpf_ksym_find+0xb4/0xd0
[  174.217280][ T6646]  ? is_bpf_text_address+0x1f/0x30
[  174.222356][ T6646]  ? kernel_text_address+0x40/0xa0
[  174.227431][ T6646]  ? profile_setup.cold+0xc1/0xc1
[  174.232444][ T6646]  ? __kernel_text_address+0x9/0x30
[  174.237609][ T6646]  ? unwind_get_return_address+0x16/0x30
[  174.243230][ T6646]  ? string_nocheck+0x88/0xb0
[  174.247873][ T6646]  ? widen_string+0x2b/0x120
[  174.252431][ T6646]  ? format_decode+0xc8/0x5d0
[  174.257185][ T6646]  ? bpf_ksym_find+0xb4/0xd0
[  174.261830][ T6646]  ? full_name_hash+0x91/0xd0
[  174.266475][ T6646]  ? tomoyo_merge_path_acl+0x32/0x50
[  174.271741][ T6646]  ? tomoyo_same_path_acl+0x50/0x50
[  174.276997][ T6646]  ? __rtnl_newlink+0xb10/0xb10
[  174.281813][ T6646]  rtnl_newlink+0x49/0x70
[  174.286133][ T6646]  rtnetlink_rcv_msg+0x173/0x4b0
[  174.291039][ T6646]  ? __copy_skb_header+0xd3/0x1c0
[  174.296031][ T6646]  ? rtnl_calcit.isra.0+0x160/0x160
[  174.301213][ T6646]  netlink_rcv_skb+0x5a/0x180
[  174.305858][ T6646]  netlink_unicast+0x20a/0x2f0
[  174.310589][ T6646]  netlink_sendmsg+0x2b5/0x560
[  174.315331][ T6646]  sock_sendmsg+0x4c/0x60
[  174.319656][ T6646]  ____sys_sendmsg+0x118/0x2f0
[  174.324390][ T6646]  ___sys_sendmsg+0x8a/0xd0
[  174.328861][ T6646]  ? profile_setup.cold+0xc1/0xc1
[  174.333854][ T6646]  ? arch_stack_walk+0x97/0xf0
[  174.338597][ T6646]  ? restore_nameidata+0x3a/0x60
[  174.343588][ T6646]  ? do_filp_open+0xc8/0x130
[  174.348351][ T6646]  ? _parse_integer+0xb1/0xd0
[  174.353091][ T6646]  ? __fget_light+0x6b/0xd0
[  174.357579][ T6646]  __sys_sendmmsg+0xda/0x230
[  174.362147][ T6646]  ? __this_cpu_preempt_check+0xb/0xb0
[  174.367789][ T6646]  ? __sb_end_write+0x56/0xb0
[  174.372437][ T6646]  ? vfs_write+0x90/0x200
[  174.376937][ T6646]  __x64_sys_sendmmsg+0x24/0x30
[  174.381955][ T6646]  do_syscall_64+0x6e/0x220
[  174.386615][ T6646]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  174.392725][ T6646] RIP: 0033:0x4457b9
[  174.396700][ T6646] Code: e8 1c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 ab 06 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  174.416723][ T6646] RSP: 002b:00007ffd7042e568 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  174.425110][ T6646] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004457b9
[  174.433084][ T6646] RDX: 0492492492492805 RSI: 0000000020000140 RDI: 0000000000000003
[  174.441121][ T6646] RBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000003233
[  174.449068][ T6646] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[  174.457042][ T6646] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000
executing program
[  180.423721][ T6647] netlink: 'syz-executor882': attribute type 5 has an invalid length.
[  180.432370][ T6647] netlink: 116 bytes leftover after parsing attributes in process `syz-executor882'.
[  180.442425][ T6647] FAULT_INJECTION: forcing a failure.
[  180.442425][ T6647] name failslab, interval 1, probability 0, space 0, times 0
[  180.455399][ T6647] CPU: 0 PID: 6647 Comm: syz-executor882 Not tainted 5.7.0-syzkaller #0
[  180.463997][ T6647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  180.474331][ T6647] Call Trace:
[  180.477601][ T6647]  dump_stack+0xb4/0xe3
[  180.481737][ T6647]  should_fail.cold+0x32/0x39
[  180.486918][ T6647]  should_failslab+0x5/0xf
[  180.491304][ T6647]  kmem_cache_alloc_trace+0x26/0x2c0
[  180.496576][ T6647]  ? _raw_spin_lock_irqsave+0x35/0x70
[  180.501933][ T6647]  macvlan_hash_add_source+0x52/0xe0
[  180.507182][ T6647]  macvlan_changelink_sources+0x1d4/0x1f0
[  180.512863][ T6647]  macvlan_common_newlink+0x21a/0x570
[  180.518208][ T6647]  ? macvlan_common_newlink+0x570/0x570
[  180.523903][ T6647]  __rtnl_newlink+0x843/0xb10
[  180.528552][ T6647]  ? bpf_ksym_find+0xb4/0xd0
[  180.533201][ T6647]  ? is_bpf_text_address+0x1f/0x30
[  180.538291][ T6647]  ? kernel_text_address+0x40/0xa0
[  180.543490][ T6647]  ? profile_setup.cold+0xc1/0xc1
[  180.548482][ T6647]  ? __kernel_text_address+0x9/0x30
[  180.553657][ T6647]  ? unwind_get_return_address+0x16/0x30
[  180.559356][ T6647]  ? string_nocheck+0x88/0xb0
[  180.564008][ T6647]  ? widen_string+0x2b/0x120
[  180.568654][ T6647]  ? format_decode+0xc8/0x5d0
[  180.573301][ T6647]  ? bpf_ksym_find+0xb4/0xd0
[  180.578000][ T6647]  ? full_name_hash+0x91/0xd0
[  180.583082][ T6647]  ? tomoyo_merge_path_acl+0x32/0x50
[  180.588705][ T6647]  ? tomoyo_same_path_acl+0x50/0x50
[  180.593876][ T6647]  ? __rtnl_newlink+0xb10/0xb10
[  180.598708][ T6647]  rtnl_newlink+0x49/0x70
[  180.603045][ T6647]  rtnetlink_rcv_msg+0x173/0x4b0
[  180.608054][ T6647]  ? __copy_skb_header+0xd3/0x1c0
[  180.613227][ T6647]  ? rtnl_calcit.isra.0+0x160/0x160
[  180.618392][ T6647]  netlink_rcv_skb+0x5a/0x180
[  180.623037][ T6647]  netlink_unicast+0x20a/0x2f0
[  180.628131][ T6647]  netlink_sendmsg+0x2b5/0x560
[  180.632890][ T6647]  sock_sendmsg+0x4c/0x60
[  180.637220][ T6647]  ____sys_sendmsg+0x118/0x2f0
[  180.641970][ T6647]  ___sys_sendmsg+0x8a/0xd0
[  180.646458][ T6647]  ? profile_setup.cold+0xc1/0xc1
[  180.651479][ T6647]  ? arch_stack_walk+0x97/0xf0
[  180.656238][ T6647]  ? restore_nameidata+0x3a/0x60
[  180.661146][ T6647]  ? do_filp_open+0xc8/0x130
[  180.667528][ T6647]  ? _parse_integer+0xb1/0xd0
[  180.672192][ T6647]  ? __fget_light+0x6b/0xd0
[  180.677470][ T6647]  __sys_sendmmsg+0xda/0x230
[  180.682039][ T6647]  ? __this_cpu_preempt_check+0xb/0xb0
[  180.687479][ T6647]  ? __sb_end_write+0x56/0xb0
[  180.692122][ T6647]  ? vfs_write+0x90/0x200
[  180.696437][ T6647]  __x64_sys_sendmmsg+0x24/0x30
[  180.701274][ T6647]  do_syscall_64+0x6e/0x220
[  180.705745][ T6647]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  180.711605][ T6647] RIP: 0033:0x4457b9
[  180.715482][ T6647] Code: e8 1c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 ab 06 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  180.735054][ T6647] RSP: 002b:00007ffd7042e568 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  180.743538][ T6647] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004457b9
[  180.751480][ T6647] RDX: 0492492492492805 RSI: 0000000020000140 RDI: 0000000000000003
[  180.759432][ T6647] RBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000003233
[  180.767391][ T6647] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[  180.775350][ T6647] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000
[  182.096899][ T6421] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
[  183.717863][    T0] NOHZ: local_softirq_pending 08
BUG: memory leak
unreferenced object 0xffff888115ac4080 (size 64):
  comm "syz-executor882", pid 6646, jiffies 4294954688 (age 14.840s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 20 ee 41 15 81 88 ff ff  ........ .A.....
    00 09 92 15 81 88 ff ff aa aa aa aa aa 23 00 00  .............#..
  backtrace:
    [<00000000fe90004e>] macvlan_hash_add_source+0x52/0xe0
    [<000000005aee7a07>] macvlan_changelink_sources+0x8a/0x1f0
    [<00000000e0e074d6>] macvlan_common_newlink+0x21a/0x570
    [<00000000c89166a4>] __rtnl_newlink+0x843/0xb10
    [<000000009677515c>] rtnl_newlink+0x49/0x70
    [<00000000fab710c9>] rtnetlink_rcv_msg+0x173/0x4b0
    [<00000000d3f45a45>] netlink_rcv_skb+0x5a/0x180
    [<00000000b9db6049>] netlink_unicast+0x20a/0x2f0
    [<000000006a00463c>] netlink_sendmsg+0x2b5/0x560
    [<00000000a31e18a9>] sock_sendmsg+0x4c/0x60
    [<000000000ca330a5>] ____sys_sendmsg+0x118/0x2f0
    [<000000006a5fc310>] ___sys_sendmsg+0x8a/0xd0
    [<000000004d3b2570>] __sys_sendmmsg+0xda/0x230
    [<00000000a524412c>] __x64_sys_sendmmsg+0x24/0x30
    [<00000000333adef2>] do_syscall_64+0x6e/0x220
    [<00000000df7893d8>] entry_SYSCALL_64_after_hwframe+0x44/0xa9